use crate::multicodec::MultiEncoded;
use crate::PLCError;
use ecdsa::elliptic_curve::sec1::ToEncodedPoint;
use ecdsa::signature::{SignerMut, Verifier};
use serde::{Deserialize, Serialize};
#[cfg(feature = "jwt")]
use jwt::{SigningAlgorithm, VerifyingAlgorithm};
#[cfg(feature = "jwt")]
use base64::Engine;
pub enum BlessedAlgorithm {
P256,
K256,
}
impl BlessedAlgorithm {
pub fn codec(&self) -> u64 {
match self {
Self::P256 => 0x1200,
Self::K256 => 0xe7,
}
}
pub fn prefix(&self) -> [u8; 2] {
match self {
Self::P256 => [0x80, 0x24],
Self::K256 => [0xe7, 0x01],
}
}
}
impl From<u64> for BlessedAlgorithm {
fn from(value: u64) -> Self {
match value {
0x1200 => Self::P256,
0xe7 => Self::K256,
_ => panic!("Unknown algorithm"),
}
}
}
#[derive(Clone, Serialize, Deserialize)]
pub struct Keypair {
pub public: Option<Vec<u8>>,
pub secret: Option<Vec<u8>>,
pub codec: u64,
}
impl Keypair {
pub fn generate(algo: BlessedAlgorithm) -> Self {
match algo {
BlessedAlgorithm::P256 => {
let sk = p256::ecdsa::SigningKey::random(&mut rand::thread_rng());
let vk = sk.verifying_key();
Keypair {
public: Some(vk.to_sec1_bytes().to_vec()),
secret: Some(sk.to_bytes().to_vec()),
codec: algo.codec(),
}
}
BlessedAlgorithm::K256 => {
let sk = k256::ecdsa::SigningKey::random(&mut rand::thread_rng());
let vk = sk.verifying_key();
Keypair {
public: Some(vk.to_sec1_bytes().to_vec()),
secret: Some(sk.to_bytes().to_vec()),
codec: algo.codec(),
}
}
}
}
pub fn from_value(value: serde_json::Value) -> Result<Self, PLCError> {
let keypair: Keypair =
serde_json::from_value(value).map_err(|e| PLCError::Other(e.into()))?;
Ok(keypair)
}
pub fn from_did_key(key: &str) -> Result<Self, PLCError> {
if !key.starts_with("did:key:") {
return Err(PLCError::InvalidKey);
}
let key = key.split_at(8).1;
let (_base, data) = multibase::decode(key).map_err(|_| PLCError::InvalidKey)?;
let decoded_result =
MultiEncoded::new(data.as_slice()).map_err(|_| PLCError::InvalidKey)?;
Ok(Keypair {
public: Some(decoded_result.data().to_vec()),
secret: None,
codec: decoded_result.codec(),
})
}
pub fn to_did_key(&self) -> Result<String, PLCError> {
if self.public.is_none() {
return Err(PLCError::InvalidKey);
}
let algo = BlessedAlgorithm::from(self.codec);
match algo {
BlessedAlgorithm::P256 => {
let pk = p256::PublicKey::from_sec1_bytes(self.public.as_ref().unwrap().as_slice())
.map_err(|e| PLCError::Other(e.into()))?;
let key = multibase::encode(
multibase::Base::Base58Btc,
[
algo.prefix().to_vec(),
pk.to_encoded_point(true).as_bytes().to_vec(),
]
.concat(),
);
Ok(format!("did:key:{}", key))
}
BlessedAlgorithm::K256 => {
let pk = k256::PublicKey::from_sec1_bytes(self.public.as_ref().unwrap().as_slice())
.map_err(|e| PLCError::Other(e.into()))?;
let vk = k256::ecdsa::VerifyingKey::from(pk);
let key = multibase::encode(
multibase::Base::Base58Btc,
[algo.prefix().to_vec(), vk.to_sec1_bytes().to_vec()].concat(),
);
Ok(format!("did:key:{}", key))
}
}
}
pub fn from_private_key(key: &str) -> Result<Self, PLCError> {
let (_base, data) = multibase::decode(key).map_err(|e| PLCError::Other(e.into()))?;
let decoded_result =
MultiEncoded::new(data.as_slice()).map_err(|e| PLCError::Other(e.into()))?;
match decoded_result.codec() {
0xe7 => {
let sk = k256::ecdsa::SigningKey::from_bytes(decoded_result.data().into())
.map_err(|e| PLCError::Other(e.into()))?;
let vk = sk.verifying_key();
Ok(Keypair {
public: Some(vk.to_sec1_bytes().to_vec()),
secret: Some(decoded_result.data().to_vec()),
codec: decoded_result.codec(),
})
}
0x1200 => {
let sk = p256::ecdsa::SigningKey::from_bytes(decoded_result.data().into())
.map_err(|e| PLCError::Other(e.into()))?;
let vk = sk.verifying_key();
Ok(Keypair {
public: Some(vk.to_sec1_bytes().to_vec()),
secret: Some(decoded_result.data().to_vec()),
codec: decoded_result.codec(),
})
}
_ => Err(PLCError::MalformedKey),
}
}
pub fn to_private_key(&self) -> Result<String, PLCError> {
if self.secret.is_none() {
return Err(PLCError::InvalidKey);
}
let algo = BlessedAlgorithm::from(self.codec);
match algo {
BlessedAlgorithm::P256 => {
let key = multibase::encode(
multibase::Base::Base58Btc,
[algo.prefix().to_vec(), self.secret.clone().unwrap()].concat(),
);
Ok(key)
}
BlessedAlgorithm::K256 => {
let key = multibase::encode(
multibase::Base::Base58Btc,
[algo.prefix().to_vec(), self.secret.clone().unwrap()].concat(),
);
Ok(key)
}
}
}
pub fn verify(&self, msg: &[u8], sig: &[u8]) -> Result<bool, PLCError> {
match self.codec {
0xe7 => {
let vk = k256::ecdsa::VerifyingKey::from_sec1_bytes(
self.public.as_ref().unwrap().as_slice(),
)
.map_err(|_| PLCError::InvalidKey)?;
let sig = k256::ecdsa::Signature::from_slice(sig.into())
.map_err(|_| PLCError::InvalidSignature)?;
if vk.verify(&msg, &sig).is_ok() {
return Ok(true);
}
}
0x1200 => {
let vk = p256::ecdsa::VerifyingKey::from_sec1_bytes(
self.public.as_ref().unwrap().as_slice(),
)
.map_err(|_| PLCError::InvalidKey)?;
let sig = p256::ecdsa::Signature::from_slice(sig.into())
.map_err(|_| PLCError::InvalidSignature)?;
if vk.verify(&msg, &sig).is_ok() {
return Ok(true);
}
}
_ => (),
}
Ok(false)
}
pub fn sign(&self, msg: &[u8]) -> Result<Vec<u8>, PLCError> {
match self.codec {
0xe7 => {
let mut sk = k256::ecdsa::SigningKey::from_bytes(
self.secret.as_ref().unwrap().as_slice().into(),
)
.map_err(|e| PLCError::Other(e.into()))?;
let sig: k256::ecdsa::Signature = sk.sign(&msg);
Ok(sig.to_bytes().to_vec())
}
0x1200 => {
let mut sk = p256::ecdsa::SigningKey::from_bytes(
self.secret.as_ref().unwrap().as_slice().into(),
)
.map_err(|e| PLCError::Other(e.into()))?;
let sig: p256::ecdsa::Signature = sk.sign(&msg);
match sig.normalize_s() {
Some(sig) => Ok(sig.to_bytes().to_vec()),
None => {
Ok(sig.to_bytes().to_vec())
}
}
}
_ => Err(PLCError::InvalidKey),
}
}
}
#[cfg(feature = "jwt")]
impl SigningAlgorithm for Keypair {
fn sign(&self, header: &str, claims: &str) -> Result<String, jwt::Error> {
let mut msg = vec![];
msg.extend_from_slice(header.as_bytes());
msg.extend_from_slice(b".");
msg.extend_from_slice(claims.as_bytes());
let sig = self.sign(msg.as_slice()).map_err(|_| jwt::Error::InvalidSignature)?;
let engine = base64::engine::general_purpose::STANDARD;
Ok(engine.encode(sig))
}
fn algorithm_type(&self) -> jwt::AlgorithmType {
match BlessedAlgorithm::from(self.codec) {
BlessedAlgorithm::P256 => jwt::AlgorithmType::Es256,
BlessedAlgorithm::K256 => jwt::AlgorithmType::None
}
}
}
#[cfg(feature = "jwt")]
impl VerifyingAlgorithm for Keypair {
fn algorithm_type(&self) -> jwt::AlgorithmType {
match BlessedAlgorithm::from(self.codec) {
BlessedAlgorithm::P256 => jwt::AlgorithmType::Es256,
BlessedAlgorithm::K256 => jwt::AlgorithmType::None
}
}
fn verify_bytes(&self, header: &str, claims: &str, signature: &[u8]) -> Result<bool, jwt::Error> {
let engine = base64::engine::general_purpose::STANDARD;
let signature = engine.decode(signature).map_err(|_| jwt::Error::InvalidSignature)?;
let mut msg = vec![];
msg.extend_from_slice(header.as_bytes());
msg.extend_from_slice(b".");
msg.extend_from_slice(claims.as_bytes());
self.verify(msg.as_slice(), signature.as_slice()).map_err(|_| jwt::Error::InvalidSignature)
}
}
#[cfg(test)]
mod test {
use super::*;
#[test]
fn test_keypair_p256() {
let keypair = Keypair::generate(BlessedAlgorithm::P256);
assert!(keypair.public.is_some());
assert!(keypair.secret.is_some());
assert_eq!(keypair.codec, 0x1200);
assert!(keypair.to_did_key().unwrap().starts_with("did:key:zDn"));
}
#[test]
fn test_keypair_k256() {
let keypair = Keypair::generate(BlessedAlgorithm::K256);
assert!(keypair.public.is_some());
assert!(keypair.secret.is_some());
assert_eq!(keypair.codec, 0xe7);
assert!(keypair.to_did_key().unwrap().starts_with("did:key:zQ3s"));
}
#[test]
fn test_keypair_from_did_key_p256() {
let orig_keypair = Keypair::generate(BlessedAlgorithm::P256);
let did_key = orig_keypair.to_did_key().unwrap();
let keypair = Keypair::from_did_key(&did_key).unwrap();
assert_eq!(
keypair.to_did_key().unwrap(),
orig_keypair.to_did_key().unwrap()
);
assert_eq!(keypair.codec, orig_keypair.codec);
}
#[test]
fn test_keypair_from_did_key_k256() {
let orig_keypair = Keypair::generate(BlessedAlgorithm::K256);
let did_key = orig_keypair.to_did_key().unwrap();
let keypair = Keypair::from_did_key(&did_key).unwrap();
assert_eq!(
keypair.to_did_key().unwrap(),
orig_keypair.to_did_key().unwrap()
);
assert_eq!(keypair.codec, orig_keypair.codec);
}
#[test]
fn test_keypair_to_did_key() {
let keypair =
Keypair::from_did_key("did:key:zQ3shhCGUqDKjStzuDxPkTxN6ujddP4RkEKJJouJGRRkaLGbg");
assert!(keypair.is_ok());
assert_eq!(
keypair.unwrap().to_did_key().unwrap(),
"did:key:zQ3shhCGUqDKjStzuDxPkTxN6ujddP4RkEKJJouJGRRkaLGbg"
);
}
#[test]
fn test_keypair_from_private_key_p256() {
let orig_keypair = Keypair::generate(BlessedAlgorithm::P256);
let private_key = orig_keypair.to_private_key().unwrap();
let keypair = Keypair::from_private_key(&private_key).unwrap();
assert_eq!(
keypair.to_did_key().unwrap(),
orig_keypair.to_did_key().unwrap()
);
assert_eq!(keypair.codec, orig_keypair.codec);
}
#[test]
fn test_keypair_from_private_key_k256() {
let orig_keypair = Keypair::generate(BlessedAlgorithm::K256);
let private_key = orig_keypair.to_private_key().unwrap();
let keypair = Keypair::from_private_key(&private_key).unwrap();
assert_eq!(
keypair.to_did_key().unwrap(),
orig_keypair.to_did_key().unwrap()
);
assert_eq!(keypair.codec, orig_keypair.codec);
}
#[test]
fn test_keypair_to_private_key_p256() {
let orig_keypair = Keypair::generate(BlessedAlgorithm::P256);
let private_key = orig_keypair.to_private_key().unwrap();
let keypair = Keypair::from_private_key(&private_key).unwrap();
assert_eq!(orig_keypair.secret.unwrap(), keypair.secret.unwrap());
}
#[test]
fn test_keypair_to_private_key_k256() {
let orig_keypair = Keypair::generate(BlessedAlgorithm::K256);
let private_key = orig_keypair.to_private_key().unwrap();
let keypair = Keypair::from_private_key(&private_key).unwrap();
assert_eq!(orig_keypair.secret.unwrap(), keypair.secret.unwrap());
}
#[cfg(feature = "jwt")]
#[test]
fn test_keypair_jwt() {
let keypair = Keypair::generate(BlessedAlgorithm::P256);
let header = "{\"alg\":\"ES256\",\"typ\":\"JWT\"}";
let claims = "{\"iss\":\"me\"}";
let sig = SigningAlgorithm::sign(&keypair, header, claims);
assert!(sig.is_ok(), "JWT should be signed correctly: {:?}", sig.err().unwrap());
let sig = sig.unwrap();
let res = keypair.verify_bytes(header, claims, sig.as_bytes());
assert!(res.is_ok(), "JWT sig should be valid: {:?}", res.err().unwrap());
}
}